7 matches found
CVE-2026-33552
Northern.tech Mender Enterprise Server before 4.1.1 has Incorrect Access Control...
PT-2026-6668
Name of the Vulnerable Software and Affected Versions Free5GC versions prior to 4.1.1 Description A security flaw exists in Free5GC up to version 4.1.0. The issue resides in the identityTriggerType function within the pfcp reports.go file, leading to a null pointer dereference. This can be...
Fluent Bit < 4.0.12 / 4.1.x < 4.1.1 Multiple Vulnerabilities
The version of Fluent Bit running on the remote host is prior to 4.0.12, or 4.1.x prior to 4.1.1. It is, therefore, affected by multiple vulnerabilities, including: - Fluent Bit inhttp, insplunk, and inelasticsearch input plugins fail to sanitize tagkey inputs. An attacker with network access or...
This affects versions of the package http-cache-semantics before 4.1.1. The issue can be exploited via malicious request header values sent to a server when that server reads the cache policy from the request using this library.
...
GHSA-GG42-MWR6-P82C Mattermost Server has intermittent Authorization bypass for resource-owners
An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5, when used as an OAuth 2.0 service provider. Resource-owner authorization can be intermittently bypassed, allowing account takeover...
OpenCV Null Pointer Dereference Vulnerability
OpenCV is a cross-platform computer vision library. A null pointer dereference vulnerability exists in the cv::XMLParser::parse function in modules/core/src/persistence.cpp in versions of OpenCV prior to 4.1.1. An attacker could exploit this vulnerability to cause a denial of service...
Unspecified Vulnerability in Apache Karaf
Apache Karaf is the United States Apache Apache Software Foundation for the deployment of applications and components of a lightweight OSGi Java Dynamic Modular System container. A security vulnerability exists in Apache Karaf versions prior to 3.0.9, prior to 4.0.9, and prior to 4.1.1. No detail...